Blissful Life

Blog

Notice: after planning it for years, I moved this blog out of blogger/blogspot (which google has abandoned long ago) to wordpress on a fine evening in Dec 2024. This notice will stay here to warn that things might be broken. Let me know if you find anything.

  • [jog-journal] I Woke Up Early Today. You Won’t Believe What Happened Next

    My professor had last day told the story of his friend who finished MBBS, Post Graduation, and some specialty, got married, had a kid, and at the age of 30 something, when everything was “settled” got a myocardial infarction. Don’t put health behind anything else, he said. And don’t go running from the next day, he said too.

    But, selective hearing at its best, when I woke up at 5.45 today, I had to do something useful. First I read one page of my textbook and just as I was about to go back to sleep, I got the idea to be running again. That’s exactly 3 months past the last time.

    Why do people have so much difficulty in doing what they are supposed to do? I had for a long time believed that people forget what they’re supposed to do and get involved in random distracting things. But if that was indeed the case, to-do lists must have worked like magic. But to-do lists don’t work. They just grow and grow and grow.

    If it’s not about remembering, maybe it’s a problem with the way we recall what we’re supposed to do. A to-do list is a bare short description of what we’re supposed to do. It doesn’t give us the entire context of what was going through in our mind when we jotted it down. It takes away the motivation.

    Maybe that’s why multi-tasking doesn’t work too. We need to enter certain “modes” to do things. When we’re supposed to be learning, we need to be motivated and comfortable to read. That is a different mind set when compared to when we’re supposed to be writing something creative. It is probably difficult for the mind to switch from one mindset to another.

    That’s probably why meetings, community calls, hackathons, etc leads to far more productive output than people left on their own produce. When you invest half an hour or a day to get your mind into a particular situation, it is filled with the motivation, the back-story, and the context of what it is supposed to do. And then, doing what we are supposed to do becomes easier.

    I have been learning d3.js since yesterday. It is a cool thing. 

    The road to kukralli has changed a lot. There are now beautiful pavements on either side. And kukralli itself has been decorated with flower pots on the sides at entrances.

    The pelicans are now floating on the lake. Maybe the pollution has come down a bit. And there was this kid running with loose shoes, not exactly lifting his legs while running, but dragging them. His shoes are probably gonna get worn out much sooner than he wants them to.

    And there was this white labrador dog which was so scared to jump across the roadside drain. The owner had to walk parallel till there was a small bridge across. Stupid dogs.

  • Mozilla Kerala Community Meetup ’15

    I left for Kochi from Mysore on Oct 1 (the same day I received email from the participation team inviting me to participation leadership cohort and passed third year subjects). After about 8 hours of sleep I woke up at 4 in the bus to be involved in a very active discussion about misogyny/nitpicking in Mozillians telegram group.

    After getting down from the bus I visited my brother and grandmother and had breakfast with them. Then, I reached Asset Summit Suites where everyone was getting ready.

    Day 1

    As usual, people reached late and the event started an hour late with introductions. Late comers had to dance. I was meeting everyone (except Anush and Kumaresan and Abin) for the first time. But Telegram and IRC and emails meant I knew most people and vice versa.

    After tea we started talking about how decentralization of powers and privileges should be our agenda and how Mozilla Kerala should be a community based on SOPs. I threw in the idea that Mozilla Kerala should, whenever possible, work inside Mozilla (for example, wiki, discourse, etc) so that it’s good for everyone.

    Speaking of discourse, we chose to use the discourse.mozilla-community.org discourse’s Kerala subcategory as the official discussion medium, IRC #kerala (with Telegram proxy bot and such stuff as required) for meetings, Gitter.im for development discussions, Mozilla Wiki/Kerala for documentation, Bugzilla.Mozillakerala.org for bugs, and so on.

    After lunch we talked about what new initiatives to plan, what to focus on, etc.

    Then, we developed [SOPs](https://wiki.mozilla.org/Kerala/SOPs) for all things conceivable. Or that’s what we thought. There’s so much of gaps in the SOPs and this will be a process that goes on for some time now.

    After dinner, I learned some meteor from Akhil and slept.

    Day 2

    Woke up tired, had breakfast, and ran to the conference hall. Today was dedicated for all the tech-work.

    There was unanimous agreement that the geeks had to stop working in the background of the homepage and upload a useful homepage. So the geeks went to code straightaway promising a basic page set up by 4 pm. (By 4, vakar did come out with a decent page full of stuff to engage with).

    Then came the controversial (and boring for some) discussion on creating a complete portal on Mozilla Kerala. The idea is simple – have a portal where when a Kerala Mozillian joins, they can figure out everything that’s going on – upcoming events, leaderboards of various Mozilla activities, and so on. But the problem is that the hours that might have to be spent on it wouldn’t be trivial. An easy way out would be to use existing Mozillians API and do very simple manipulation and chaining of API calls to present leaderboards without much technical complexity. This has the added advantage that we’d be reusing Mozillians website and data rather than reinventing the whole wheel and protecting ourselves from NIH syndrome. It’d also go well with what I wrote down on a sticky on the wall “We should try to integrate with the larger Mozilla community whenever possible, rather than trying to break away”

    While there were good arguments on both side, all that’s now left to be seen is what gets coded in the coming few weeks (or months, who knows?)

    Meanwhile, we also wrote down the impact and outcomes we need to have by the end of 2016 (taking a cue from participation team) and that helped put things in perspective.

    After lunch there was a discussion about Maker Party Malabar, on the model of Maker Party Kochi. Actually, this discussion was going on even when I left for Mysore in the night. I suggested on adding a net neutrality station in this party. Should figure out a way to make that topic more in line with the maker spirit.

    Abin had pointed out that good recognition of contribution is very important in retatining contributors. Binoy shared his experience working with womoz and how they have so many hurdles in even attending a Mozilla event.

    Keeping with the unconference style of the whole meet, there was no official end of the meetup. We took enough photographs and left the place when the hotel asked us to clear the conference room for the next event happening there.

    We then switched to rooms. Luckily we had 3 rooms next to each other and everyone was doing something in some room. Shine was working on the server. jsx booking tickets to China. I was sharing my ebook collection with psbots. Ruwaiz was learning stuff from Kumaresan. Another group was planning Maker Party Malabar and so on.

    Walking by the side of Kochi Metro under construction I didn’t even have time to reflect on the two days when I found a low floor AC bus which would take me to Ernakulam bus stand and the bus home.

  • Did I Screw Up Mozilla India Blog’s Security?

    With great power comes great responsibility. The headline was clickbait. I probably haven’t screwed up anything. I was granted temporary admin access to Mozilla India blog because I kept pestering the existing admins with bug-fix demands. This post is the story of how I went ahead to fix my first bug; opening myself to scrutiny, for the security of everyone.

    working on daddy's computer by C Jill Reed, on Flickr
    Creative Commons Creative Commons Attribution-Share Alike 2.0 Generic License   by  C Jill Reed

    Immediately after Deb said he’s giving me admin access what I did was reset my password on the blog’s WordPress account. I let wordpress generate a secure password for me instead of choosing any myself.

    The next task was storing this password somewhere so that I don’t have to reset it the next time I wanted to login. There were two options in front of me. The first one was to store it in firefox’s own password manager. But, if I do so, to be absolutely sure nobody else accesses it if I leave my laptop unlocked, I’ve to set up a master password. Setting up master password will make it less convenient for me because it’ll affect my normal browsing (requiring the password in every session for other websites, while I need it only for blog.mozillaindia.org which I’d be visiting only seldom).

    Therefore I decided to save the password encrypted in my file system. Although ArchWiki lists many methods for disk encryption, I used a GPG based encryption. Using the vim-gnupg plugin I transparently saved the password to the filesystem, encrypting and decrypting on the fly.

    Now that I could login safely, I proceeded to look at the bug I wanted fixed – to replace blank og:image. Jafar had included the diagnosis of the problem in the bug report itself. Jetpack linked to a blank image as og:image if it didn’t find any suitable image on the page.

    I ducked for solutions and landed on Jetpack’s own blog with the code snippet that would solve the issue. I was confused for a while because the post just had a function definition and didn’t tell me how to add it to the blog. Ducking again, I discovered that the common way for adding extra functions is to add it to functions.php file inside the theme. This was slightly counter-intuitive for me because I was under the impression that themes were all about the style/layout. But, as it turns out, themes have a very critical role in the functioning of a wordpress website. And as a welcome side effect, it’s possible to edit the functions.php file from the theme editor directly from the admin dashboard, thus eliminating the need to ssh into the hosting provider.

    Although now I knew what to do, I wasn’t sure that I’d be able to get the code running in one try. And I didn’t want a single minute of downtime on the blog. Therefore I decided to recreate the blog locally on my computer. I downloaded wordpress and set up mysql, apache, etc., installed the exact plugins and theme as Mozilla India blog such that I could test the changes I was about to make on my computer before working on the live blog.

    On my local installation, I added the extra functions to functions.php with comments explaining why those were needed and it worked in the first attempt itself. I then created a few posts with and without images to make sure everything was working as expected. Once verified, I made the same modifications on the live website and marked the bug resolved fixed. Voilah! It was one small bug for a sysadmin, but one giant leap for me.

    NB: We are always looking for more contributors in Mozilla. If you’re interested in participating in interesting (web, or otherwise) projects and want to have lots of fun while learning cool stuff, ping me.

  • My Response to Whatsapp’s (?) Cease and Desist Notification Against Me

    I’d received a letter in legalese from someone who claims to be WhatsApp’s lawyer asking me to do certain ludicrous things. Here’s my response.

    Dear RAB,

    This is in response to your email on 4th August titled “WhatsApps’s Cease and Desist and Demand Against Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp”. Let me make it clear to you at the outset that your email “threat” was completely inappropriate and wrong for various reasons which I shall elucidate in this mail. 

    I understand that you have not even gone through my code and rather just did a search for “whatsapp” on my github repositories before sending me this stuff. I understand it because you tell me that “QRtoWhatsapp expose[d] WhatsApp users to anonymous messages that others may use to deliver solicitations or malicious software to WhatsApp users.” A cursory knowledge of Android programming and the patience to first go through my code before accusing me of something should have let you known that QRtoWhatsapp was a program that scans a QR code and starts an Intent, which is the official way for inter-process communication on Android, thus allowing someone to easily share the message behind a QR code to WhatsApp.

    Like QRtoWhatsapp, python-whatsapp-bot and pyWhatsapp both had whatsapp only in their names. They could as well have been called python-bots and most of the code in those programs were not even mine, but copies of others’ code released in permissive licenses. They were of generic nature and could have been used to build a program which responds to commands. Of course I also gave links to instructions to connect it with Yowsup. But the following accussations in your email is totally wrong.

    you will not attempt to reverse engineer, alter or modify any part of the Service;

    I haven’t attempted to reverse engineer, alter or modify any part of your service. I love free and open source software. And I love FOSS precisely because I can understand how it works without struggling through reverse engineering or whatever. If you gave me three months of holidays, I wouldn’t spend a minute on trying to figure out how a proprietary software works.

    The most I have tried to understand how WhatsApp works is by being a power user and testing all the features WhatsApp provides. When WhatsApp introduced blue check marks, or voice call, or groups of 50, or 100, I was probably among the first few users to notice or use those features. Because I used to care for WhatsApp.

    you will not duplicate, transfer, give access to, copy or distribute any part of the Service in any medium without WhatsApp’s prior written authorization;

    I haven’t done any of these because I have only as much access to WhatsApp’s “Service” as any other user. I have had no connection with anyone who develops WhatsApp and I do not have the magic power to obtain access to your “Service” through any other medium.

    you agree not to collect or harvest any personally identifiable information, including phone numbers, from the Service;

    You (and WhatsApp) are being ridiculous. WhatsApp’s entire business is on connecting people through their phone numbers. I cannot communicate to someone on WhatsApp without first knowing their phone number. If I already know someone’s phone number, why would I “harvest” it from WhatsApp?

    Also, when I am added to a group on WhatsApp, it shows me phone numbers and nickname of everyone whom I don’t already have in my contacts. What am I supposed to do with these phone numbers? If I save them to my phone’s contacts using WhatsApp’s own “add to contacts” option, am I harvesting their personal details?

    you will not interfere with or disrupt the integrity or performance of the Service or the data contained on the Service; and

    I have not. Since WhatsApp wouldn’t allow multiple clients to connect with the same phone number, I couldn’t even run my own bots on WhatsApp.

    you will not attempt to gain unauthorized access to the Service or its related systems or networks.

    I haven’t attempted this because I don’t care and I don’t think I can gain access even if I try (because WhatsApp should have set up some really strong security in there).

    You accuse me of:

    using the names “Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp” and “WhatsApp” which creates confusion about the origin of Python–whatsapp-bot, pyWhatsapp, and QRtoWhatsapp; 

    But this is unfounded fear. People who use Github probably know the difference between free software and proprietary software. They know that WhatsApp has no love for free software and therefore wouldn’t ever have any source code open to scrutiny. Therefore, this confusion you describe is imaginary.

    using (and/or facilitating the use of) the WhatsApp registration system to generate credentials for and authenticate unauthorized clients and services in violation of the WhatsApp Terms of Service;

    reverse engineering, altering, modifying, copying, using, or redistributing WhatsApp code, and/or circumventing certain technical measures put in place to protect WhatsApp’s Service, IP, and WhatsApp users; and

    enabling users of unauthorized clients and services built using Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp to circumvent technical measures to protect WhatsApp’s Service, access the Service without authorization, and violate WhatsApp’s Terms of Service.

    These are all wrong accusations as explained earlier.

    Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp willfully exploits WhatsApp’s Service, undermines the goals of WhatsApp, and intrudes upon and undermines the service experience of the community of WhatsApp users.

    This is where I have serious disagreement with you. If bots worked properly, they would only add to the experience of the community of WhatsApp users. This can be easily seen from how Telegram messenger introduced an official API to build bots. Maybe WhatsApp should stop thinking that it is the best messaging platform on Earth right now.

    Your demands and my responses:

    Cease all promotion and distribution of Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp at all distribution points, including GitHub repositories (e.g. https://github.com/asdofindia/python-whatsapp-bot; https://github.com/asdofindia/pyWhatsapp; https://github.com/asdofindia/QRtoWhatsapp), websites (e.g. http://asdofindia.blogspot.com/), and social media accounts, and confirm you will not in the future develop, sell, offer for download, and/or distribute Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp or like code and resources;

    I have removed the repositories from github on the day you sent me the email because the very act of sending such a mail offended me. I used to think WhatsApp was a cool software but now I realize it isn’t. I do not care about WhatsApp any more to be developing anything related to WhatsApp.

    Confirm you will not in the future develop, sell or offer any unauthorized code, resources, services or products that interact, or enable other to interact, with WhatsApp services, products, or users;

    Like I said, I f***ing don’t care any more. You can be assured that I will not even talk good about WhatsApp any more, let alone interact with it.

    Cease using the terms “Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp,” “WhatsApp” and any other terms or logos confusingly similar to WhatsApp in connection with any code, resource, product or service you currently offer and may offer in the future;

    I’ll continue using the name WhatsApp when I mean WhatsApp. I shall make sure that nobody is confused which WhatsApp I mean when I refer to WhatsApp in sentences like “WhatsApp sucks”.

    Account for and disgorge all profits you have obtained from the development and distribution of Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp;

    I have not obtained any profit from the development of these programs. I have only incurred losses of time and energy.

    Compensate WhatsApp for the damages it sustained from your distribution of Python-whatsapp-bot, pyWhatsapp, and QRtoWhatsapp;

    Compensate WhatsApp for damages associated with Python-whatsapp-bot,
    pyWhatsapp, and QRtoWhatsapp’s infringement of WhatsApp’s IP; and

    You should rather give me compensation for the insults and threats you hurled on me and for the effort I have wasted on making WhatsApp any usable.

    Immediately take steps to preserve all documents, tangible things and electronically-stored information potentially relevant to the issues addressed in this letter, as those could be potentially relevant and discoverable materials in connection with any legal proceeding WhatsApp may choose to pursue against you or Python-whatsapp-bot, pyWhatsapp, and  QRtoWhatsapp.

    Yes, that is why I’m writing this response as a post on my blog.

    WhatsApp and its affiliates have taken technical steps to deactivate your WhatsApp, Facebook, and Instagram accounts, and hereby revoke your  limited licenses to access WhatsApp’s, Facebook’s, or Instagram’s websites and/or to use any of their services for any reason whatsoever. This means that you, your agents, employees, affiliates, or anyone acting on your behalf (“You” or “Your”) may not access the WhatsApp, Facebook, and Instagram services, websites, apps, networks, platforms, or otherwise (“Platforms”) for any reason whatsoever.

    Please feel free to delete all my accounts on these platforms. Also I demand that you (or your client) do the following:

    • Delete all the data you have stored with or without my permission on the servers of Facebook/WhatsApp/Instagram.
    • Delete all the metadata you have collected from me with or without my permission.
    • Publish the details of all the data about me that you have handed over to any third party (NSA, advertisers, or anyone who is not Whatsapp/Facebook/Instagram). Take all steps possible to remove the data from those third party servers.
    • Delete all the groups I have created on WhatsApp/Facebook.
    • Remove the accounts of or give a warning to all users who have joined WhatsApp/Facebook/Instagram through an invitation sent by me.
    • Stop interfering in the Internet experience of millions of Internet users in India and other countries through programs like Internet org. (More about this later)
    WhatsApp’s log from their site. Probably a TradeMark violation by using it here.

    Some friendly advice to WhatsApp and its new boss
    WhatsApp was a cool thing when it was born. So was Facebook. That’s why people like me started using those services. That’s why we asked our friends to start using those services. That’s why some of us continue using WhatsApp/Facebook even now.

    But that doesn’t mean these things will continue to be cool no matter what you do to it. In my opinion, WhatsApp is no longer cool. It does not support multiple devices, cloud sync, or sending files. It does not have a proper desktop/web client that works on its own. (Copy some good things from Telegram, maybe?).

    To be a programmer is to automate things. Programmers have built automation on top of every popular communication medium (Jabber, IRC, diaspora, even facebook). WhatsApp cannot be an exception to this rule. Yet, unlike other instant messaging services, you continue to staunchly believe that automation shouldn’t be possible on WhatsApp. That makes WhatsApp uncool too.

    Services like WhatsApp relies on power users to gain traction. I am a power user myself. I am among those who start using your app before 1% of the world have heard of it. We are the people who bring traction to your apps. We are the people who dare into the unexplored and explore choices to their fullest. By sending hate mails to people like me, you’re alienating the very people who made your service a success. I understand that you have gained the critical mass required to sustain without power users like me. But should you continue doing such hateful things, we will make people switch because we can.

    So with Facebook. If you cannot continue to innovate, you’ll fail. Just because you can change the algorithm at will to push posts from pages down, you shouldn’t be asking pages to pay dollars to make themselves heard to their own hard earned fans. You shouldn’t arbitrarily censor people. You shouldn’t try to suppress social revolutions. You shouldn’t interfere in people’s social lives. The very fact that you continue doing these harmful things to the society means that you’ve become arrogant. You’ve forgotten your modest beginnings. And people will find out. They will switch away from you just like they switched away from others to you.

    Maybe you understand. Maybe that’s why you’re now trying to restrict people’s access to what services they can access on the Internet. Maybe that’s the reason you push for misnomered schemes like Internet org which gives people easier access to your own services.

    But I warn you and challenge you. You cannot continue being successful with strategies like this. You will fail. Walled gardens like yours will be replaced by open, vibrant spaces. Diversity will become the norm and monochromatic services like yours will become history. The Internet is not your property and it will not be. And we will protect that rich, diverse, free Internet.

    Broad-chested,
    Akshay

  • Don’t put all your eggs in one Wikipedia

    If you have ever tried creating a wikipedia article on a not so popular subject you know how it gets flagged for speedy deletion even before you make the second edit on the page.

    For example, I recently tried creating a page for Swathanthra Malayalam Computing which anyone active in the free software sphere of Kerala would be knowing about. But, it was soon deleted. I have a fairly good understanding of how the WP:NOTE policy works and I was fairly convinced with my knowledge of reliable sources that SMC is notable enough to warrant an inclusion in Wikipedia. So, I started trying to convince the administrator who deleted the page (a non-Malayali, non-Indian) to restore the article. After at least 4 hours spent in writing essays to convince him, the article was partially restored to my User space. I was then asked to edit it, get it reviewed and then move it to the encyclopedia.

    This ruthless deletion of content can be understood from one point of view – that of maintaining a high quality encyclopedia which gives people immediate access to a brief summary of a certain topic.

    But that’s where Wikipedia (or rather Jimmy Wales) becomes slightly hypocritical and arrogant. It’s claimed (by who? by Jimmy Wales and many others) that Wikipedia is trying to give people free access to the sum of all human knowledge.

    Is this realistic or true? Can Wikipedia be the sum of all human knowledge? Assuming Wikipedia gets enough donations to run millions of servers. Can it include the sum of *all* human knowledge? Or, more importantly will it?

    Wikipedia quite clearly allows only encyclopedic knowledge to be included in itself. And there are quite a few guidelines on what content belongs to Wikipedia and what doesn’t. This very fact shows that “encyclopedic” is only a subset of all human
    knowledge and has two corollaries:

    1. wikipedia is not the sum of all human knowledge
    2. the editors will constantly be under pressure to categorize any
      knowledge as encyclopedic and non-encyclopedic and omit some of the
      information

    This is a handicap wikipedia has put on itself to
    make itself useful for someone who comes in for a superficial knowledge
    of a topic. Thus wikipedia easily becomes a ready reference to get an
    overview of things. But it becomes impossible to go deeper on anything.

    And this compulsion to trim articles by removing some facts selectively paves way
    for problems like the hegemony of asshole consensus.

    I believe the problem is that we try to put all our eggs in Wikipedia because we’re mistakenly led to believe that only the content that exists in Wikipedia is the content that is worthy of knowing. (Because you see, Wikipedia is the sum of all human knowledge). This is both false and stupid.

    Who decides notability on Wikipedia? The editors, based on notability guidelines. And who decides that? People like Jimmy Wales and editors who have significant majority or influence over the policy formation process of Wikipedia?

    Currently notability is heavily relying on reliable sources. Who decides reliability? In a world where censorship and political correctness is not unknown, is there a way to be sure that reliable sources are telling you the whole truth and nothing but the truth?

    Does these policies and guidelines take into account the perspectives of people who are under-represented on Wikipedia?

    How different is Wikipedia from a multi-author blog? Does having a million editors automatically make Wikipedia infinitely better than a blog if what the editors can and cannot do is decided by a smaller set of people?

    But, are you saying all codifiable knowledge should go on Wikipedia? Shouldn’t there be some kind of curation or peer review of what is right and what’s wrong?

    What I am saying is that Wikipedia should stop claiming that it is the summum bonum of human knowledge. (This should also help them be less arrogant when trying to push Wikipedia as the only website that people need access to)

    It is not, and it can never be.

    The closest it can come to that is to become a great foundation for building a federated system in which people can easily get started codifying all the knowledge that they happen to have. In fact, by creating mediawiki software they’ve done a great deal towards that.

    The next step they should embark on is federation. Federation instantly solves all the problems that I mentioned above. Because if one wikipedia doesn’t like your content, there would be another wikipedia to accept it. Instead of spending all your time and effort in convincing a random white male admin that your article is worthy or notable, you can spend it on writing down all that you know about your subject on a wiki where it is welcome.

    But remember that this is already how the Internet is. The Internet is decentralized and
    federated. “Knowledge” on the Internet is uploaded by whoever is interested.
    People have to spend some energy in figuring out what is correct and what’s
    wrong. Instead of censoring anyone, the Internet allows everyone to speak. Peer review and content curation is implemented not by removing content, but by adding more content. If there’s something wrong on the Internet, there’ll be another article on the Internet explaining why it is wrong.

    Wikipedia can help a lot if it tries to facilitate this process by encouraging federation. But instead if it tries to be a centralized authority, it is hampering access to knowledge.

    In other words we must give Wikipedia only the importance that it deserves – just another multi-author website on the Internet. Wikipedia is not the sum of all human knowledge; the Internet could be.

  • Secure Communication on Mobile Phones Using Only Libre Apps

    I have previously written why I prefer Telegram over WhatsApp and that gap continues to widen since Telegram introduced an API for building bots and since WhatsApp sent me a legal notice for building a bot.

    Meanwhile, one thing we should remember is that despite Telegram’s promise that it’ll eventually open source all code, its server side code isn’t open yet and shows no sign of being open any time soon.

    People like me often wonder if there can be a completely free working application for secure mobile messaging.

    TextSecure is hailed upon as a solution to this issue by many. But, its developers have trust issues with f-droid and also want Google Play Services installed on the phone which’s ridiculous in my opinion. People who’d want to use TextSecure instead of Telegram are the people who would want complete free software on their phones and TextSecure is virtually impossible to be installed on your CyanogenMod phones unless you flash Google apps which beats the entire purpose.

    Another approach was brought out by Tox which worked almost like a torrents did, with a peer to peer messaging system. But this consumes large amounts of data on a mobile device and leaves one less than satisfied.

    I often tend to like standards based approach in situations like these. And the only long time IM standard that I know of is XMPP. But, the way XMPP is defined right now there are a lot of things that make it unsuitable for the mobile environment.

    1. Nobody is developing a good XMPP based solution.

      There is an app called Conversations which is very very nice. But if you were to list down the steps to get started on it here’s how it goes:

      • Buy the app on play store OR allow untrusted sources, download & install f-droid, then download & install Conversations
      • Find an XMPP server
      • Sign up for the XMPP server
      • Notify friends (probably through other means) about your XMPP id
      • Enable encryption manually and only when mutually agreed upon.

      This complicated approach can never get the critical mass of people on it.

    2. That bit about encryption deserves to be a point on its own. As of now, OTR is the most popular solution for encrypted chat on XMPP. But OTR works only if both sender and receiver are online at the same time. OpenPGP based encryption is unreliable. Encryption will probably be solved when axolotl support gains traction.
    3. Contact discovery is more important than we think it is.
    4. Push messaging?

    That’s where Kontalk comes in. Kontalk is built on top of XMPP and stays as close to standards as is possible. It is encrypted by default and designed to save on the server as little information as possible about the clients.

    Kontalk supports push messaging which is a battery saver on mobile phones.

    Also, the contact discovery on Kontalk is based on one’s phone number (just like on Telegram). This makes it easier to find friends using Kontalk.

    But Kontalk still doesn’t have group chat support. It doesn’t work on multiple devices simultaneously.

    The way forward

    An ideal mass messaging client should have the following features

    • Easy to use, even for the least technical people.
    • Encrypted.
    • Allow discovery of contacts with existing contact information.
    • Support multiple devices and sync chat history among them.
    • Support group messaging. 
    • Support push notifications.
    • Use as little data as possible.
    • Allow sending files. 
    • Federated. 
    • Follow standard protocols (or create them if none exists)

    Both Conversations and Kontalk get some parts of the above feature set correct. But neither fulfills it completely.

    Diaspora now has built in XMPP server thus allowing Conversations to connect with it. Once it supports tigase it can be made to also support Kontalk.

    Ambitious diaspora pods like poddery.com and diasp.in are certainly dreaming of a social future where diaspora and XMPP are closely knit together to form a standard based, federated, secure, free, self-hostable, cohesive social network infrastructure.

  • Does Healthcare Need Technology or Policy or Passionate People or all of these?

    At HackIndia 2015 in Bangalore which I’d attended during the last 7 hours of 18th July as part of the Mozilla team, I had met three young doctors roaming around from booth to booth. One of them, incidentally, is living in Mysore and I had a meetup with him (S) and his sister (V) at our favorite Kukralli yesterday.

    We were brought together by the feeling that there are problems in health care and that there could be technological solutions to at least some of them.

    Here’s what’s a very rough (rearranged, rephrased, corrected) transcript of some interesting parts of our long conversation around the lake.

    A (me, final year): I was attending a world ORS day program today in my college. And that’s when I thought that we should be having small apps/websites for smartphones, localized to local languages, to help people know about simple things like ORS.

    S (intern, off duty): I was going through some health-tech startups. I think there should be applications that let patients know what to do in every situation – like in an emergency – they must know which hospital to go to, where the facilities are available to treat their kind of disease, and which doctor treats what. I saw this app which lets patients rate doctors according to how good they were during consultations.

    V (OBG PG): I think rating doctors is a bad idea. It puts a lot of pressure on the doctors.

    S: So you were talking about Mozilla Science Lab at HackIndia. What is Mozilla Science Lab? Is Mozilla turning into health?

    A: Mozilla Science Lab is a Mozilla project that brings together researchers, librarians, publishers and developers so that they can publish their work online using the power of the Web and not fall prey to the money hungry publishers that exist today. In India, IITs and IISc are in various stages of such participation in the web.

    S: There’s this online portal where they publish their lectures – NPTEL.

    A: Yeah, I’ve signed up for some 4 courses 😀

    S: You were also talking something about free software, open data in health care?

    A: Yeah, let’s begin with free software. I guess you’re familiar with it, it’s the concept that software should be free. There’s this free software foundation which has supported the GNU project. They’ve defined the 4 essential freedoms for a software to be free. Those are:

    1. Freedom to use the software
    2. Freedom to modify the software (by modifying the source code)
    3. Freedom to redistribute the software
    4. Freedom to distribute the modifications of the software

    These freedoms ensure that a software is actually useful for improving mankind. This is especially useful in government set-ups where the funding is already low, so we have to make maximum use of the money we have. And free software helps in that too. Also, when & if there are specific requirements for customization it is easier & cheaper with free software. And, these solutions can be used in other cities, states too without much cost in scaling.

    Then there is open document formats. Health care can be expected to generate a lot of data in the near future. We should be worrying about what file format these data is saved in. We wouldn’t want them to be saved in a proprietary format which might not be interoperable. That would make any kind of meta-analysis, or other collaborative use of such data difficult or impossible.

    Then there’s this government policy on open data. Instead of filing RTI for access to key data from various government departments, they’re expected to proactively publish various data they collect into the public domain in accessible formats. This is a policy (that is not legally enforcable) and therefore is suffering from lack of attention from various departments. Yet there’s this open data portal at data.gov.in which gives various kinds of useful data in formats that developers can directly tap to create apps or the like.

    In fact, health departments should be very active in collecting and publishing such data because that can automatically lead to very good research. And our ways currently are leading to the destruction of data that is already collected – for example, as discovered through an RTI campaign by NS Prashanth and friends although our death certificates are detailed with income, caste, cause of death, etc, this data is not properly collected and aggregated and therefore many states and districts of India cannot say differential counts for the various causes of death in their area.

    S: Hmm. On another note, I remember this teleradiology platform in which doctors can submit radiology images and then get opinion from a global network. And they are expanding that to other departments like pathology and medicine.

    A: One of my friends was talking about this Canadian team called health-e-net which does something similar – a global network of doctors whom patients can get second opinions from without going far from their home.

    S: Also at hackindia there was this 3D printing work by Fracktal Works. They were talking about developing cheap slit lamps for ophthalmology departments using 3D printing technology by reimagining the hardware design.

    A: Yeah, medical equipments are so expensive that I think anyone who can become a medical equipment manufacturer can make so much money. I bought a peak flow meter for one of my studies. It costed ₹500 and it was just plastic, like a kid’s toy. I guess they can make more money than even drug manufacturers because they don’t even have to spend anything for R&D.

    S: No, even drug manufacturing is cheap these days because of the various ways patent laws are. There’s something called process patent as opposed to product patent. So, if a process is patented, new companies can modify a small step in that process and create a different process which is not patented. Thus they’ll be able to manufacture drugs cheaply.

    A: Ah, that reminds me of Gleevec and Novaris being turned down by the Supreme court upholding India’s stance on how patents should be. Usually pharmaceutical companies, when the patent period on their chemical is over, makes a small change to their drug and gets a new patent. But Indian patent law prevents this. And when challenged in the court Supreme court considered the Indian situation of a lot of people needing drugs and granted in favor of the people. This is one of the things that enables generic drugs to flourish in India. And, Africa’s HIV and other disease control relies in a large manner on India’s generic drug industry.

    And USA under lobbying from these Pharma companies are pressurizing India using international trade laws to prevent production of such generic drugs.

    And Modi government is bringing in too many things. Like the DNA profiling bill with no bothering about issues surrounding it. Then making Aadhaar mandatory across everything even though Supreme Court had asked not to do so and even though there’s no parliamentary sanction, the constitutional validity of which is now being fought over in Supreme Court. India is slowly being turned into a surveillance state.

    S: But it’s difficult to influence the government decisions, isn’t it?

    A: Yes, that’s why we need to organzie. Organizations are powerful. For example, the savetheinternet campaign. When a few people came together, everything started falling in place and soon a large majority got convinced of the importance of net neutrality. Convince enough people and we can definitely influence government.

    S: But convincing people is difficult when they don’t have tangible benefits. With net neutrality they could directly see the problem. But that wouldn’t be the case in other issues.

    A: Yes, true. Like it is very difficult to make people understand that zero rating is the same thing as differential pricing. But that doesn’t mean we should stop trying. After all, we ought to keep trying.

    S: Coming back, we should have patient centric apps. Like Your D.O.S.T emotional support system. The current apps focus on doctors or hospitals, trying to make money. There are a lot of gaps in health care like doctors not getting enough time to speak to patient. There should be apps that help fill in this space with enough information for the patient.

    V: Doctors don’t have much time for patients at all. There is a lot of workload.

    S: Yes, that’s where these apps can help people. To fill up the gap.

    A: Like medscape or mayoclinic? But probably with localized content?

    S: The target group should be middle class mothers who may or may not be educated. Therefore it should be accessible. Yes, localized content, and even more pictorial content.

    A: Like thai card!

    V: These thai cards, many mothers don’t even open it. There is excellent information about breastfeeding, immunization, etc in that. But they open it only when they are in the doctor’s room for vaccination. There should be more of audio-visual information. In fact, there are a lot of videos created by many organizations. The challenge is in making the mothers watch these.

    A: There should be apps that notifies mothers on mobile phones about immunization and all. Someone else can configure these for them.

    V: There are such apps already. And big hospitals even have the facility of telephone reminders as special packs.

    S: There could be call centres which give information out to patients. They can call these call centres through numbers like 112 and get help.

    A: How would that be sustainable? Who’d pay these people?

    V: You know, even doctors do not know many things. For example, when my friends became pregnant, they’d start googling for what to eat and so on.

    A: In fact, the motto of my website is to improve learning, especially medicine. There are a lot of problems in medical education. We learn a lot but not in creative useful ways. I am still finding out ways to learn medicine. For example, I built a set of open questions in first chapter of ophthalmology textbook. These questions, just by going through them, makes the learner learn a lot of things.

    And there should be more of open educational resources. The Web is still deficient in medical education resources. There are some videos put on youtube by universities, or professors. They are usually accompanied by copyright notices. This shouldn’t be happening. We need remixable, open educational resources that are licensed in permissive ways.

    And there sholud be creative ways of learning. It shouldn’t just be text. We do have creative things like virtual body, etc coming. But these shouldn’t be restricted to just demo apps. Medicine is so voluminous, there shouldn’t be some interactive thing for every topic.

    V: There’s Dr Virkud. He records procedures, clinics, etc adds audio and uploads them on Youtube. But not all professors are cool like him.  For example, downloading slides from slideshare and using them for presentations is frowned upon by professors.

    A: Exactly! I see surgeries from YouTube and that makes professors angry. But they can’t be blamed for these. They should first be made aware of these alternate things – open learning, free software, etc. Once they realize how great they are, they can switch their mindset easily and this is probably a more solid strategy than students switching sides first.

    V: Another thing, these techies research everything on the Internet, including diagnosis and treatment before coming to a doctor. But they’re only like 5% of population. The rest and the vast majority of patients are looking for an emotional touch from hospitals. They care more about care than about technology or luxury.

    Also, if I am not a good communicator, why should I be communicating with patients. Why should I repeat the same advice to every pregnant women? If I’m good at clinical things, I should be left to do that. Counseling, follow-up, treating, paper work, everything shouldn’t be on doctors. Why can’t we recruit more staff for giving patients advice, talking to them etc rather than spending on luxury? Medicine should be a team work.

    S: But I think luxury is important. There are some people who can afford to pay for it. And this can bring in much needed money which can be used to cross-subsidize for poor patients.

    V: Even if people can afford luxury, care is more important for most people. For example, there are RMPs in AP.  They have won patients’ trust by being with them and giving emotional touch. And they bring the patients to the hospitals from where they get commissions. They are called kickbacks.

    A: I guess these are all policy issues that need to be solved by bringing in policy changes. There probably are organizations working for health policy changes? I can remember save the doctor campaign (or the patient?). There should be more campaigns for all these issues.

    S: The problem is that medical student corpus is largely apolitical. A lot of students aren’t even aware of issues.

    V: We had a small organization in AP. AP’s medical education is a mess. Students don’t even know how to take case. Our idea was to increase the feeling of social responsibility in students and make them more political. But in our meetings, they ended up asking questions about how to learn pathology, what to do after MBBS, etc. Even active members lost interest a while later because of peer pressure. How can we expect huge campaigns in such situations?

    A: Hmm. Let’s just keep in touch for now and motivate each other to keep going. We won’t waste time in organizing.

    And then we split ways. If you’re interested in joining our small group, let me know.

  • [jog-journal] Natural Selection in Dogs and FOSS Contributors

    The usual pack of stray dogs were serenely looking at the morning walkers in front of oval ground – not moving unless the wheel of an oncoming car is directed at the ground under their rib cages. One of them suddenly started jumping with joy as it saw an old man and ran towards him. “Did you think I have biscuit?”, said the old man petting it.

    Why do dogs love humans so much? Maybe during our evolution, we humans gave environmental pressure for the selection of loyal dogs only. Maybe cats evolved on their own and maybe that’s why they don’t care about humans.

    I think contributors to FOSS also undergo such a selection, unknowingly.

    People who end up being contributors to FOSS are the people who ask questions and answer them themselves.

    Most FOSS projects are written as dogfeed to solve the author’s specific problem. It is only an after-thought that makes it a public library. Therefore, things would be done in ways that are less than intuitive. Configuration would be a mess, and the only documentation would be the few comments that’re dispersed in the source code.

    With projects being so beginner unfriendly, how do newcomers start contributing to FOSS? Or, what kind of newcomers start contributing? Only those who are genuinely curious, who’re willing to learn by themselves, and who are more comfortable finding answers online than asking people questions.

    This could explain why sometimes FOSS contributors are the worst people to take help from to get started with contributing to FOSS. They themselves are curious truth seekers who do not like third party answers. They are not acquainted with the process of handholding. And therefore, they appear hostile to the poor newbie who is still learning to ask questions the smart way.

    Today morning I made a presentation for two girls in a college in Kerala whom I met at hackindia to get started with FOSS. I have been trying this pedagogy which puts the emphasis on acquiring those skills which help in auto-didactism.

    And I ran so hard that I felt my eyes would pop out.

  • [jog-journal] Streaks

    Streaks are very important. For today, I’d not have gotten up had it not been for the streak. Yes, the 2 day streak is the most difficult.

    And not just that. I didn’t even think while running today. I was testing the efficiency of my method to achieve runner’s high. And it is pretty much efficient, for me at least. I ran faster and longer, today. But being unable to think is a side effect of running faster.

    And while talking about streaks, I’m on a three day streak in learning French using Duolingo, today. I started my streak again because of my friend, who’s on a streak too and catching up with me.

    Looking at duolingo, social pressure and streak pressure must be the two things that makes one learn continuously.

    On the way back I saw them playing Tennis at the courts opposite cosmopolitan club. That’s when I remembered my failed attempts to learn Tennis and play like Federer.

    Talking about Federer, I had once read that forehand was his great weakness once upon a time. But gradually, he turned it into his greatest strength. What is my greatest weakness?

  • [jog-journal] Is Runner’s High Just an Energy?

    Ever since finishing VJ James’ Nireeswaran yesterday, I can’t get rid of the idea that every thing in the universe is just energy. Our body is made up of molecules of various kind. But inside, they’re just subatomic particles in different configurations. And protons and electrons and neutrons apparently have this wave-particle state. Everything is energy. So, the only question we have to ponder upon is “What is energy?”

    The huge pipe laying work in Kukralli is still underway. But good people have kept the jogging trail untouched, as of now.

    By the end of today’s run, I realized that sprint interval training has indeed made one change in me. I can’t run slow anymore. I can’t jog. I have to run. If I try to slow down to someone’s speed, I feel restrained, and soon, tired. Probably the stride length is longer now. Even chi-running has become impossible. I feel impatient at slow speeds.
     
    And if you are unable to attain runner’s high soon enough or at all, there’s a simple trick to achieve pseudo-runner’s high – just look at the trees, or the sky, or anything that doesn’t move with you.

    A day’s run has been perfect if you feel a sense of peace and happiness flowing out from the middle of your chest.

    On the way back I saw this Ola cab. Makes me wonder, how much would it cost to start driving one, and can it be a good part-time job? Imagine all those part time auto driving fuelled self-funded IIT education stories. The auto-rickshaws would be replaced by Ola and Uber cabs in the very near future.